The Agent Skills Directory

[Secure Resource Management]: The skill emphasizes security best practices throughout, specifically recommending one IAM execution role per function scoped to exact resource ARNs and the use of AWS Secrets Manager or SSM Parameter Store over environment variables for sensitive data.
[Input Validation and Sanitization]: In the production readiness section, the skill correctly identifies event data as an untrusted ingestion surface and recommends using validation libraries like Pydantic, Zod, or JSON Schema to sanitize inputs before processing.
[Trusted Infrastructure]: All external references, such as container base images (public.ecr.aws) and documentation links, point to official and well-known AWS services. Dependencies and tools mentioned (e.g., AWS CLI, SAM, CDK, and AWS Lambda Powertools) are standard, official utilities for the intended workload.
[Development Tool Awareness]: The skill provides transparent guidance on fast-iteration tools like sam sync and cdk watch, explicitly noting that they are development-only and bypass certain safety checks, ensuring the user is aware of the operational trade-offs.
[Operational Reliability]: The troubleshooting and production references provide actionable advice for handling common failure modes, such as 5xx errors, timeouts, and throttling, which enhances the overall resilience of the systems being built.

aws-serverless